[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Feb 9 20:30:25 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0de4b7e4 by Salvatore Bonaccorso at 2024-02-09T21:29:47+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
CVE-2024-25679 (In PQUIC before 5bde5bb, retention of unused initial encryption keys a ...)
TODO: check
CVE-2024-25678 (In LiteSpeed QUIC (LSQUIC) Library before 4.0.4, DCID validation is mi ...)
- TODO: check
+ NOT-FOR-US: LiteSpeed QUIC (LSQUIC) Library
CVE-2024-25677 (In Min before 1.31.0, local files are not correctly treated as unique ...)
- TODO: check
+ NOT-FOR-US: Min
CVE-2024-25675 (An issue was discovered in MISP before 2.4.184. A client does not need ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2024-25674 (An issue was discovered in MISP before 2.4.184. Organisation logo uplo ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2024-25454 (Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-25453 (Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-25452 (Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via t ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-25451 (Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via t ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2024-25450 (imlib2 v1.9.1 was discovered to mishandle memory allocation in the fun ...)
TODO: check
CVE-2024-25448 (An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 ...)
@@ -31,51 +31,51 @@ CVE-2024-25443 (An issue in the HuginBase::ImageVariable<double>::linkWith funct
CVE-2024-25442 (An issue in the HuginBase::PanoramaMemento::loadPTScript function of H ...)
TODO: check
CVE-2024-25318 (Code-projects Hotel Managment System 1.0 allows SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Code-projects Hotel Managment System
CVE-2024-25316 (Code-projects Hotel Managment System 1.0 allows SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Code-projects Hotel Managment System
CVE-2024-25315 (Code-projects Hotel Managment System 1.0, allows SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Code-projects Hotel Managment System
CVE-2024-25314 (Code-projects Hotel Managment System 1.0, allows SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Code-projects Hotel Managment System
CVE-2024-25313 (Code-projects Simple School Managment System 1.0 allows Authentication ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25312 (Code-projects Simple School Managment System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25310 (Code-projects Simple School Managment System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25309 (Code-projects Simple School Managment System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25308 (Code-projects Simple School Managment System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25307 (Code-projects Cinema Seat Reservation System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Cinema Seat Reservation System
CVE-2024-25306 (Code-projects Simple School Managment System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25305 (Code-projects Simple School Managment System 1.0 allows Authentication ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25304 (Code-projects Simple School Managment System 1.0 allows SQL Injection ...)
- TODO: check
+ NOT-FOR-US: Code-projects Simple School Managment System
CVE-2024-25302 (Sourcecodester Event Student Attendance System 1.0, allows SQL Injecti ...)
- TODO: check
+ NOT-FOR-US: Sourcecodester Event Student Attendance System
CVE-2024-24776 (Mattermost fails to check the required permissions in thePOST /api/v4/ ...)
TODO: check
CVE-2024-24774 (Mattermost Jira Plugin handling subscriptions fails to check the secur ...)
- TODO: check
+ NOT-FOR-US: Mattermost Jira Plugin
CVE-2024-23319 (Mattermost Jira Plugin fails to protect against logout CSRF allowing a ...)
- TODO: check
+ NOT-FOR-US: Mattermost Jira Plugin
CVE-2024-22119 (The cause of vulnerability is improper validation of form input field ...)
TODO: check
CVE-2024-21762 (A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2 ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2024-1402 (Mattermost fails to check if a custom emoji reaction exists when sendi ...)
TODO: check
CVE-2024-1247 (Concrete CMS version 9 before 9.2.5 is vulnerable tostored XSS via the ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2024-1246 (Concrete CMSin version 9 before 9.2.5is vulnerable to reflected XSS vi ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2024-1245 (Concrete CMSversion 9 before 9.2.5 is vulnerable to stored XSS in file ...)
- TODO: check
+ NOT-FOR-US: Concrete CMS
CVE-2023-6724 (Authorization Bypass Through User-Controlled Key vulnerability in Soft ...)
TODO: check
CVE-2023-6716
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0de4b7e4403fe18673152a01670a29dd103a4b08
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0de4b7e4403fe18673152a01670a29dd103a4b08
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240209/d21a4fed/attachment.htm>
More information about the debian-security-tracker-commits
mailing list